I copied an existing and successfully running site to a new development server. The login on the new server is now broken, and I tracked it down to the fact that although the session cookie is renamed ... ini_set('session.name', 'DOMAIN1'); ... the browser keeps storing the sesssion cookie as PHPSESSID. When I remove the above line...
Hello all i have 2 domains e.g. test1.com and test2.com and i need user login cross at this 2 domains. both domains run on same server, i hobe for help, :) ...
Regarding this security issue: http://techcrunch.com/2010/10/24/firesheep-in-wolves-clothing-app-lets-you-hack-into-twitter-facebook-accounts-easily/ Is it true to say "any time a user logs into a site, and isn't redirected to SSL/TLS/HTTPS connection, that the session cookies are vulnerable"? What is the best solution to protect a Fac...
A colleague of mine asked me to take a look at some cookie behaviour. He created simple web app that created a cookie and inserted the value of a text field, he then checked the cookie collection on the next page to see it had been inserted and read back correctly. All simple really. On the second page however he noted the was more th...